Overview

overview

6

Static

static

6

2fa13453ff...18.apk

android-9-x86

6

2fa13453ff...18.apk

android-10-x64

6

Analysis

  • max time kernel
    34s
  • max time network
    139s
  • platform
    android_x86
  • resource
    android-x86-arm-20240506-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20240506-enlocale:en-usos:android-9-x86system
  • submitted
    10/05/2024, 14:43

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2fa13453ff17052585042af705b4a984_JaffaCakes118.apk

  • Size

    17.3MB

  • MD5

    2fa13453ff17052585042af705b4a984

  • SHA1

    8a786db9dff8ca220b1091af553f8274815f5b1d

  • SHA256

    6aa08cfff9e4c55600295451f46657a03df50c6457bf225c237ffcaa13a0b64c

  • SHA512

    7d1bb5f43bf75b4a3a1b3c3e1ba3181261ad272a71490a74172a1733eb0c16e73ae38917091b8dbe85b83af49de6399e75a7fee50fe891704fa1c66d33958eb2

  • SSDEEP

    393216:DW5iMtENsJ03sbZUzPBe6Z6MBPw5ZprAIYCVmqCJ9Az:i763sSzpR1BIPJA5Az

Score
6/10
discoveryimpact

Malware Config

Signatures

Processes

  • com.subway.bjsubway
    1⤵
    • Checks if the internet connection is available
    • Uses Crypto APIs (Might try to encrypt user data)
    PID:4199
    • chmod 755 /data/user/0/com.subway.bjsubway/.jiagu/libjiagu.so
      2⤵
        PID:4226
      • chmod 755 /data/user/0/com.subway.bjsubway/.jiagu/libjiagu.so
        2⤵
          PID:4275
        • /system/bin/dex2oat --instruction-set=x86 --dex-file=/data/data/com.subway.bjsubway/.jiagu/classes.dex --dex-file=/data/data/com.subway.bjsubway/.jiagu/classes.dex!classes2.dex --dex-file=/data/data/com.subway.bjsubway/.jiagu/classes.dex!classes3.dex --oat-file=/data/data/com.subway.bjsubway/.jiagu/oat/x86/classes.odex --inline-max-code-units=0 --compiler-filter=speed
          2⤵
            PID:4296

        Network

        MITRE ATT&CK Mobile v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • /data/data/com.subway.bjsubway/.jiagu/classes.dex
          Filesize

          5.6MB

          MD5

          73f18a1336b76ebf7eca8c32f6a9a263

          SHA1

          2552b57ed3f9aa8b7009a4bc9b3c15b1f3ddd66c

          SHA256

          cef3b526308af35a1f76a27dac62514fa88e585edd2fe428de4af21958e9a408

          SHA512

          d47adb08fe68572d92b21819a15fdde559468348d524f8f7a8e6cd6436e3486ae2c6b659bb8aba13d9466ee1a85adbb2cd2157c0c69af9b1c9cfa4c9e48550d4

          Download Submit

        • /data/data/com.subway.bjsubway/.jiagu/libjiagu.so
          Filesize

          363KB

          MD5

          acd3a64e22c56dc0628edd7615a74ab4

          SHA1

          ec22ef7fa9dca4b475af2724d483bda140370ca7

          SHA256

          c57cffd4175fcd618f29d48eeba1b8b30e2bfd4ce9e05c6c5b0bc4378914d008

          SHA512

          ec93027efd827742d3f9db70c4d4aba51e817191ff888aa2337939f2ce518b98f1c1f7ed3d49d25d3bff47738f68ead6348b1b309c54a17e18c4460cc2142e3e

          Download Submit